Skip to main content

AuthN API Reference

AuthN API Endpoints

Status Codes
StatusStatus CodeDescription
AgreementExists200

An attempt was made to create an agreement that already exists.

AgreementPublished200

An attempt was made to edit or delete an agreement that was previously published.

AuthenticationFailure200

Authentication failed because an incorrect password, social ID, or OTP code was provided.

CantDeleteFirstName200

An attempt was made to delete the first_name field of a user's profile.

CantDeleteLastName200

An attempt was made to delete the first_name field of a user's profile.

CantDeletePhone200

An attempt was made to delete the phone field of a user's profile when SMS OTP was enabled.

CantRefreshToken200

An attempt was made to refresh a token that is not refreshable or has already been refreshed.

CantSetPassword200

An attempt was made to set a password for a user that does not support passwords.

CheckEmail200

User successfully signuped up by needs to verify their email

ConfigExists200

An attempt was made to create a Config that already exists.

DisabledToken200

An attempt was made to use a token that has been disabled.

DisabledUser200

An attempt was made to access a disabled user.

DomainExists200

An attempt was made to register domain that already exists.

DomainVerificationFailure200

CNAME lookup did not match the login domain.

DuplicateOTPCode200

A previously used OTP code was used. Please enter the next OTP code.

ExpiredToken200

An attempt was made to access a token that has expired.

IncorrectAuthenticationProvider200

An attempt was made to authenticate a user with a different authentication provider than the user was provisioned with.

InvalidAgreement200

An attempt was made to access a non-existant agreement.

InvalidAuthenticationProvider200

An attempt was made to configure a user account with an authentication provider that is not enabled.

InvalidAuthenticator200

An attempt was made to access a non-existant authenticator.

InvalidCallback200

An attempt was made to use a callback URI that was not configured for this service.

InvalidDomain200

An attempt was made to access a non-existant domain.

InvalidExtProvisionSetting200

An attempt was made to access a non-existant external provider provision settings.

InvalidFlow200

An attempt was made to use a flow ID that does not exist or has expired.

InvalidFlowState200

An attempt was made to perform a flow operation in a state when it was not allowed.

InvalidMfaProvider200

An attempt was made to use an invalid MFA provider.

InvalidSAMLServiceProvider200

An attempt was made to access a non-existant SAML Service Provider.

InvalidServiceAccount200

An attempt was made to access a non-existant service account.

InvalidTicket200

An attempt was made to access a non-existant ticket.

InvalidTicketType200

An invalid ticket type was used.

InvalidToken200

An attempt was made to access a non-existant token.

InvalidUser200

An attempt was made to access a non-existant user.

InvalidUserImport200

An attempt was made to access a non-existant user import.

InvalidWebauthnSession200

An attempt was made to access a non-existant webauthn session.

MfaCodeExpired200

An attempt was made to use an MFA code that has expired.

MfaEnrolled200

An attempt was made to enroll an MFA provider that is already enrolled.

MfaNotEnrolled200

An attempt was made to use an MFA provider that is not enrolled.

MfaResendTooSoon200

An attempt was made to send an new MFA code too soon after the previous code was sent.

NoSocialProviderConfigured200

An attempt to start a flow on a user without a social oauth provider was created.

NoWebauthnProviderConfigured200

An attempt to start a flow on a user without a webauthn provider was created.

OrgExists200

An attempt was made to enable an Org that is already enabled.

PasswordHashGenerationFailed200

An attempt was made to match password and password generated hash

PasswordHashMatchFailed200

An attempt was made to match password and password generated hash

PasswordPolicyFailure200

The password did not satisfy password complexity requirements.

PhoneNumberRequired200

An operation was performed that requires that the user has a phone number configured.

SAMLGenericError200

An unexpected SAML-related issue has occurred.

SAMLSPExists200

An attempt was made to create a SAML Service Provider of an existing Service Provider.

SMSSendFailure200

An attempt to send an SMS message failed.

SignupForbidden200

An attempt was made to sign up a new user when signups are disabled.

UserExists200

An attempt was made to create a user with an email address of an existing user.

UserImportErr200

Failed to import user.

UserImportExists200

An attempt was made to create an user import from the given source that already in-progress.

BadSession400

An invalid session was attempted to be accessed

CaptchaFailed400

User sent up a bad captcha

ExtSettingValidationErr400

Failed to verify provision setting payload, could be un-supported auth_mode or auth_settings.

InvalidFieldMapping400

An attempt was made to import or validate user import but field mapping did not match

InvalidFileFormat400

An attempt was made to upload bad file's format or structure.

InvalidFileType400

An attempt was made to upload file type which is not supported or not allowed

InvalidPasswordHashParam400

An attempt was made to match password and password generated hash

InvalidUserImportSource400

An attempt was made to update/delete user import source which is not exist

InvalidUserImportSourceType400

An attempt was made to define user import source type which is not supported or not allowed

NotMatchExpectedEmail400

User tried to sign up using an email when a forced email was set

SAMLAttributeError400

Expected attribute(s) missing in the SAML assertion or attributes not matching expectation.

SAMLConfigMismatchError400

Mismatched Entity ID, endpoint URL, or NameID format between SP and IdP.

WebauthnVerificationError400

Failed to verify webauthn payload, could be attestation, challenge, mismatch, etc.

AccountLockedOut403

The account has been locked out due to too many failed login attempts

DomainNotAllowed403

An attempt was made to signup or user creation from a disallowed domain

IPNotAllowed403

An attempt was made to login or signup from a disallowed IP address.

SAMLCertAndSignatureError403

Problem with certificates for signing/encryption or misconfiguration in signing assertions.

ThreatCheckDomainBlocked403

An attempt was made to signup or log in from a blocked domain

ThreatCheckIPBlocked403

An attempt was made to signup or log ins from a blocked IP

CreateUserFailed500

Failed to create user for some reason

Was this article helpful?

Contact us